Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4866

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2012-4866
Last Modified 07 Sep 2012 12:00:00
Published 06 Sep 2012 01:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4866

Summary

Untrusted search path vulnerability in Xtreme RAT 3.5 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as the current working directory. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Xtremerat 3.5


References

XF - xtreme-rat-dll-code-execution(74151)

BID - 52542

MISC - http://packetstormsecurity.org/files/110949/Xtreme-RAT-DLL-Hijack.html


Last Updated: 27 May 2016 11:00:29